MiracleLinux 4 : kexec-tools-2.0.0-209.AXS4 (AXSA:2012-12:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2012-12:01 advisory. kexec-tools provides /sbin/kexec binary that facilitates a new kernel to boot using the kernel's kexec feature either on a normal or a panic reboot...

EUVD-2016-6694

Malware in sbrugna...

EUVD-2011-3551

Malware in sbrugna...

EUVD-2011-3550

Malware in sbrugna...

Oracle Linux 6 : kexec-tools (ELSA-2011-1532)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2011-1532 advisory. 2.0.0-209.0.1.el6 - Make sure '--allow-missing' is effective by adding to MKDUMPRDARGS in kdump.sysconfig, kdump.sysconfig.i386, and...

SUSE CVE-2011-3590

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive...

SUSE CVE-2016-5759

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root...

Information Disclosure

kexec-tools is vulnerable to information disclosure. mkdumprd included unneeded sensitive files such as all files from the "/root/.ssh/" directory and the host's private SSH keys in the resulting initrd. This could lead to an information leak when initrd files were previously created with...

Information Disclosure

kexec-tools is vulnerable to information disclosure. mkdumprd created initrd files with world-readable permissions. A local user could possibly use this flaw to gain access to sensitive information, such as the private SSH key used to authenticate to a remote server when kdump was configured to...

Design/Logic Flaw

The kdump implementation is missing the host key verification in the kdump and mkdumprd OpenSSH integration of kdump prior to version 2012-01-20. This is similar to CVE-2011-3588, but different in that the kdump implementation is specific to SUSE. A remote malicious kdump server could use this fl...

Code injection

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root...

CVE-2016-5759

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root...

CVE-2016-5759

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root...

CVE-2011-3589

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions for vmcore files, which allows local users to obtain sensitive information by inspecting the file...

CVE-2011-3588

The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers...

Code injection

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions for vmcore files, which allows local users to obtain sensitive information by inspecting the file...

CVE-2011-3590

CVE-2011-3590 affects the kexec-tools package in Red Hat Enterprise Linux where the mkdumprd script for kexec-tools (versions 1.x before 1.102pre-154 and 2.x before 2.0.0-209) embeds root SSH private keys inside a vmcore file. This allows context-dependent attackers to obtain sensitive informatio...

CVE-2011-3588

The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers...

CVE-2011-3588

CVE-2011-3588 relates to the kexec-tools/ mkdumprd OpenSSH integration where the SSH option StrictHostKeyChecking is disabled in affected Red Hat kdump tooling (kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209). This enables a man-in-the-middle to spoof the kdump server and exfiltrate...

CVE-2011-3589

CVE-2011-3589 concerns the kexec-tools mkdumprd script creating world-readable vmcore files, enabling local users to read sensitive content (e.g., root SSH keys) on Red Hat Enterprise Linux. Affected are kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 in RHEL; the issue stems from pe...